NVISOsecurity / DLLoaderLinks
☆24Updated 5 years ago
Alternatives and similar repositories for DLLoader
Users that are interested in DLLoader are comparing it to the libraries listed below
Sorting:
- This program is used to perform reflective DLL Injection to a remote process specified by the user.☆65Updated 2 years ago
- Get your data from the resource section manually, with no need for windows apis☆65Updated 11 months ago
- Titan: A crappy Reflective Loader written in C and assembly for Cobalt Strike. Redirects DNS Beacon over DoH☆68Updated 4 years ago
- SharpElevator is a C# implementation of Elevator for UAC bypass. This UAC bypass was originally discovered by James Forshaw and publishe…☆60Updated 3 years ago
- DLL Hollowing PoC - Remote and Self shellcode injection☆83Updated 3 years ago
- A PoC of Stack encryption prior to custom sleeping by leveraging CPU cycles.☆64Updated 2 years ago
- A reimplementation of Cobalt Strike's Beacon Object File (BOF) Loader☆59Updated last year
- Simple ETW unhook PoC. Overwrites NtTraceEvent opcode to disable ETW at Nt-function level.☆48Updated last year
- Patch AMSI and ETW in remote process via direct syscall☆83Updated 3 years ago
- Execute a payload at each right click on a file/folder in the explorer menu for persistence☆175Updated 2 years ago
- ☆50Updated 3 years ago
- Indirect NT syscalls LSASS dumper.☆46Updated 2 years ago
- Enabled / Disable LSA Protection via BYOVD☆78Updated 3 years ago
- A PoC project for embedding shellcode to Hint/Name Table☆111Updated 3 years ago
- This script is used to unload PsSetCreateProcessNotifyRoutineEx, PsSetCreateProcessNotifyRoutine, PsSetLoadImageNotifyRoutine and PsSetCr…☆62Updated last year
- abusing Process Hacker driver to terminate other processes (BYOVD)☆84Updated 2 years ago
- It stinks☆102Updated 3 years ago
- Simple PoC to locate hooked functions by EDR in ntdll.dll☆39Updated 2 years ago
- Basic implementation of Cobalt Strikes - User Defined Reflective Loader feature☆102Updated 2 years ago
- CreateRemoteThreadPlus: how to pass multiple parameters to the remote thread function without shellcode.☆136Updated 3 months ago
- A small NtCreateUserProcess PoC that spawns a Command prompt.☆100Updated 3 years ago
- A tool that bypasses Windows Defender by manually loading DLLs, parsing EAT directly, and updating IAT with unhooked functions to run M…☆22Updated last year
- This script is used to bypass DLL Hooking using a fresh mapped copy of ntdll file, patch the ETW and trigger a shellcode with process hol…☆69Updated last year
- Halos Gate-based NTAPI Unhooker☆51Updated 3 years ago
- This PoC uses two diferent technics for stealing the primary token from all running processes, showing that is possible to impersonate a…☆57Updated 3 years ago
- This is my own implementation of the Perun's Fart technique by Sektor7☆72Updated 3 years ago
- LdrLoadDll Unhooking☆134Updated 3 years ago
- bring your own vulnerable driver☆111Updated 2 years ago
- Beacon Object File allowing creation of Beacons in different sessions.☆80Updated 3 years ago
- Without closing windows defender, to make defender useless by removing its token privileges and lowering the token integrity.☆31Updated 3 years ago